$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft File: d0ZKhG930cTTZqMGuAaTn88qYBo.mft (raw, json) Hash identifier: 3qrj6BwVkyRqaCdqFe2wwFwbYcbVJt8opwOzUvBGwvQ= Subject key identifier: 76:C9:F8:5E:2D:A7:AB:D5:C3:C1:1C:5A:4F:2D:D1:DF:17:E9:06:20 Authority key identifier: 77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A Certificate issuer: /CN=A91B74D6/serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Certificate serial: 011C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft Manifest number: 0116 Signing time: Sun 19 Oct 2025 07:47:34 +0000 Manifest this update: Sun 19 Oct 2025 07:47:33 +0000 Manifest next update: Sun 26 Oct 2025 07:47:33 +0000 Files and hashes: 1: d0ZKhG930cTTZqMGuAaTn88qYBo.crl (hash: /KHUy/dt6GH+oa6yStQEoYCajcI4rxQOKKGk1DlhS5o=) 2: ABD84FB00F8A11EF943CC917C4F9AE02.roa (hash: mAjzpgSn4LjU+hGR/suY8fIT9L0ResXkBxM/GBV6W9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:47:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74D6, serialNumber=77464A846F77D1C4D366A306B806939FCF2A601A Validity Not Before: Oct 19 07:47:33 2025 GMT Not After : Oct 26 07:47:33 2025 GMT Subject: CN=68f49795-e21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:52:fc:36:bc:ff:68:cf:4f:6e:af:10:c2:c5: 45:ad:95:17:52:71:52:35:f1:b5:e3:7a:3c:9b:0a: bd:57:ac:29:e8:74:b3:e1:91:aa:04:d3:68:9c:8a: a7:e4:e5:da:0b:47:99:dd:59:d4:a8:f6:52:f3:d1: 33:43:79:56:30:de:6d:92:85:f7:29:be:85:6f:11: 96:40:b8:30:9a:eb:e1:c9:4c:5c:25:3b:19:6c:61: 10:06:7e:23:df:af:64:98:c4:59:5a:eb:6b:a4:ab: 48:c8:d5:23:f7:a2:13:d8:ea:65:8d:61:30:2b:36: 61:b9:7b:05:ef:f5:28:75:0e:25:9e:4e:45:ff:b1: e1:50:6b:c2:96:be:6c:3b:f0:32:2e:f3:6e:8b:21: 90:cd:c5:90:8e:e7:d0:8a:d6:f3:e0:9c:25:bc:d2: 30:08:ae:07:24:66:d8:2e:29:e1:6e:e1:40:35:ef: 5b:11:a5:1b:c9:29:ed:fa:9a:20:6e:63:46:96:7b: 21:ed:ff:07:0f:fa:97:d4:b5:b5:53:5e:9c:74:fb: 7f:be:09:55:98:5b:c1:d6:42:eb:c2:ce:fc:c1:af: 2c:4f:e8:dd:8f:fc:b7:d3:3b:df:9d:76:b5:d1:9c: 71:a8:c5:6a:a0:66:de:84:70:80:44:cf:c2:de:23: 29:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C9:F8:5E:2D:A7:AB:D5:C3:C1:1C:5A:4F:2D:D1:DF:17:E9:06:20 X509v3 Authority Key Identifier: keyid:77:46:4A:84:6F:77:D1:C4:D3:66:A3:06:B8:06:93:9F:CF:2A:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0ZKhG930cTTZqMGuAaTn88qYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74D6/DE22AD240CDF11EF9484E62AC4F9AE02/d0ZKhG930cTTZqMGuAaTn88qYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ca:ef:68:66:b2:eb:3c:05:2b:cb:ab:f9:7d:e4:53:f2:0b: e2:28:62:95:87:bf:db:ef:53:58:c5:3a:3b:50:1d:46:ca:37: 8b:75:37:c2:fc:54:78:a9:19:61:4e:6c:50:f0:d6:39:18:b4: 7e:07:73:98:8d:2a:04:fd:c3:f3:75:fc:01:ca:03:11:89:d3: 0e:55:69:93:c1:b6:8b:65:60:86:e1:24:bd:fc:1f:35:9a:a1: 4d:34:7d:25:a2:ec:05:df:54:69:e4:d8:63:47:0f:b9:e2:cd: 8f:27:d4:dd:20:ee:d3:58:36:df:65:84:a9:09:9e:0f:ad:70: 29:52:8c:38:81:d8:3b:28:5e:34:a3:b7:e6:39:42:a6:13:35: ab:16:01:b8:ad:32:79:37:ea:3c:63:56:7b:1e:33:ce:ab:08: a0:0a:0c:fa:9f:f6:b3:03:60:6b:72:46:17:c8:c4:b4:d9:31: 57:e1:88:54:7f:0d:18:66:1c:fd:6d:9d:a3:c0:d9:a0:58:2f: ea:ec:64:68:c5:88:82:82:a9:38:6d:28:de:9b:21:72:4b:65: 4a:10:9e:c8:6e:96:1a:07:9e:c4:18:0a:3f:60:2e:bc:b4:4d: 26:79:5a:57:89:5b:3e:4a:d2:a9:45:1d:e8:b4:b8:9f:9a:a8: 76:2b:01:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RDYxMTAvBgNVBAUTKDc3NDY0QTg0NkY3N0QxQzREMzY2QTMwNkI4MDY5MzlG Q0YyQTYwMUEwHhcNMjUxMDE5MDc0NzMzWhcNMjUxMDI2MDc0NzMzWjAYMRYwFAYD VQQDEw02OGY0OTc5NS1lMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAllL8Nrz/aM9Pbq8QwsVFrZUXUnFSNfG143o8mwq9V6wp6HSz4ZGqBNNonIqn 5OXaC0eZ3VnUqPZS89EzQ3lWMN5tkoX3Kb6FbxGWQLgwmuvhyUxcJTsZbGEQBn4j 369kmMRZWutrpKtIyNUj96IT2OpljWEwKzZhuXsF7/UodQ4lnk5F/7HhUGvClr5s O/AyLvNuiyGQzcWQjufQitbz4JwlvNIwCK4HJGbYLinhbuFANe9bEaUbySnt+pog bmNGlnsh7f8HD/qX1LW1U16cdPt/vglVmFvB1kLrws78wa8sT+jdj/y30zvfnXa1 0ZxxqMVqoGbehHCARM/C3iMpvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHbJ+F4t p6vVw8EcWk8t0d8X6QYgMB8GA1UdIwQYMBaAFHdGSoRvd9HE02ajBrgGk5/PKmAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRENi9ERTIyQUQyNDBD REYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBjVFRacU1HdUFhVG44OHFZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwWktoRzkzMGNUVFpxTUd1QWFUbjg4cVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzRENi9ERTIyQUQyNDBDREYxMUVGOTQ4NEU2MkFDNEY5QUUwMi9kMFpLaEc5MzBj VFRacU1HdUFhVG44OHFZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxyu9oZrLrPAUry6v5feRT8gviKGKVh7/b71NYxTo7UB1GyjeLdTfC /FR4qRlhTmxQ8NY5GLR+B3OYjSoE/cPzdfwBygMRidMOVWmTwbaLZWCG4SS9/B81 mqFNNH0louwF31Rp5NhjRw+54s2PJ9TdIO7TWDbfZYSpCZ4PrXApUow4gdg7KF40 o7fmOUKmEzWrFgG4rTJ5N+o8Y1Z7HjPOqwigCgz6n/azA2BrckYXyMS02TFX4YhU fw0YZhz9bZ2jwNmgWC/q7GRoxYiCgqk4bSjemyFyS2VKEJ7IbpYaB57EGAo/YC68 tE0meVpXiVs+StKpRR3otLifmqh2KwGa -----END CERTIFICATE-----Generated at Mon Oct 20 01:48:05 2025 by rpki-client